On Tue, 28 Dec 2004 01:10:31 +1100, Russell Coker <russell@xxxxxxxxxxxx> wrote:
> On Friday 03 December 2004 03:55, Tom London <selinux@xxxxxxxxx> wrote:
> > Running strict/enforcing off of latest Rawhide:
> >
> > initrc runs hpoj which runs /usr/sbin/ptal-init
> > which produces the following avc's.
> >
> > [I tried changing the type of /usr/sbin/ptal-init
> > to ptal_exec_t, but that didn't work ;-( ]
>
> How did it not work?
>
> > Dec 2 06:45:39 fedora kernel: audit(1101998713.227:0): avc: denied
> > { unlink } for pid=1414 exe=/bin/rm name=mlc_usb_PSC_900_Series
> > dev=hda2 ino=38214 scontext=system_u:system_r:initrc_t
> > tcontext=system_u:object_r:ptal_var_run_t tclass=fifo_file
>
> --
> http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages
> http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark
> http://www.coker.com.au/postal/ Postal SMTP/POP benchmark
> http://www.coker.com.au/~russell/ My home page
>
Russell,
If I remember correctly, this caused many more AVCs for
other things.....
The current policy has this working correctly.
tom
--
Tom London
